Rahim Taheri scite author profile

Alazab

et al. 2021

IEEE Trans. Ind. Inf.

122

On defending against label flipping attacks on malware detection systems

Javidan

et al. 2020

Neural Comput & Applic

Label manipulation attacks are a subclass of data poisoning attacks in adversarial machine learning used against different applications, such as malware detection. These types of attacks represent a serious threat to detection systems in environments having high noise rate or uncertainty, such as complex networks and Internet of Thing (IoT). Recent work in the literature has suggested using the K-Nearest Neighboring (KNN) algorithm to defend against such attacks. However, such an approach can suffer from low to wrong detection accuracy. In this paper, we design an architecture to tackle the Android malware detection problem in IoT systems. We develop an attack mechanism based on Silhouette clustering method, modified for mobile Android platforms. We proposed two Convolutional Neural Network (CNN)-type deep learning algorithms against this Silhouette Clustering-based Label Flipping Attack (SCLFA). We show the effectiveness of these two defense algorithms -Label-based Semi-supervised Defense (LSD) and clustering-based Semi-supervised Defense (CSD) -in correcting labels being attacked. We evaluate the performance of the proposed algorithms by varying the various machine learning parameters on three Android datasets: Drebin, Contagio, and Genome and three types of features: API, intent, and permission. Our evaluation shows that using random forest feature selection and varying ratios of features can result in an improvement of up to 19% accuracy when compared with the state-of-the-art method in the literature.

show abstract

Adversarial android malware detection for mobile multimedia applications in IoT environments

Javidan

Pooranian

2020

Multimed Tools Appl

Can machine learning model with static features be fooled: an adversarial machine learning approach

et al. 2020

The widespread adoption of smartphones dramatically increases the risk of attacks and the spread of mobile malware, especially on the Android platform. Machine learning-based solutions have been already used as a tool to supersede signature-based anti-malware systems. However, malware authors leverage features from malicious and legitimate samples to estimate statistical difference in-order to create adversarial examples. Hence, to evaluate the vulnerability of machine learning algorithms in malware detection, we propose five different attack scenarios to perturb malicious applications (apps). By doing this, the classification algorithm inappropriately fits the discriminant function on the set of data points, eventually yielding a higher misclassification rate. Further, to distinguish the adversarial examples from benign samples, we propose two defense mechanisms to counter attacks. To validate our attacks and solutions, we test our model on three different benchmark datasets. We also test our methods using various classifier algorithms and compare them with the stateof-the-art data poisoning method using the Jacobian matrix. Promising results show that generated adversarial samples can evade detection with a very high probability. Additionally, evasive variants generated by our attack models when used to harden the developed anti-malware system improves the detection rate up to

show abstract

RSS: An Energy-Efficient Approach for Securing IoT Service Protocols Against the DoS Attack

Ghahramani

Javidan

IEEE Internet Things J.

et al. 2021

Automatic Clustering of Attacks in Intrusion Detection Systems

Pooranian

et al. 2019

LEVER: Secure Deduplicated Cloud Storage With Encrypted Two-Party Interactions in Cyber--Physical Systems

Pooranian

Garg

et al. 2021

IEEE Trans. Ind. Inf.